Employee Management System

employee_management_system

Vendor: Sherlock • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-25216 1Sherlock 1Employee Management System Mar 13, 2025 Feb 14, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the mailud parameter at /aprocess.php.
CVE-2024-25215 1Sherlock 1Employee Management System May 8, 2025 Feb 14, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the pwd parameter at /aprocess.php.
CVE-2024-25214 1Sherlock 1Employee Management System Nov 21, 2024 Feb 14, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in Employee Managment System v1.0 allows attackers to bypass authentication via injecting a crafted payload into the E-mail and Password parameters at /alogin.html.
CVE-2024-25213 1Sherlock 1Employee Management System May 12, 2025 Feb 14, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php.
CVE-2024-25212 1Sherlock 1Employee Management System Nov 21, 2024 Feb 14, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /delete.php.